I’ve always been a big believer that technology and education are two of the best ways to empower people. Especially in today’s world where so much of what we do, from banking to shopping to transportation, is centered around technology. The more you know about technology, the better you can use it to your own advantage. But the more you’re connected to this digital world, the more you have to worry about your information and privacy. Which is why I’m very glad that we’ve started to create security-focused content here at Treehouse.
Our first security release, Introduction to Data Security focuses on what you can do, as a developer, to make sure you’re handling your users’ data securely and properly. At first glance, it might seem like putting their data on a server with good passwords on all of the accounts would be enough but there’s way more to it than that. While having a hardened server is a great step, beyond that are things like encrypting their data, securely hashing passwords, and keeping eavesdroppers out of their private communications. This course is focused on explaining the why and how of tools like GPG, public and private key encryption, and effective hashing techniques. By the end of it, you should have a good understanding of approaches you can use in your favorite languages and frameworks to make your apps more secure for your end users.
Up next, we have Greg Stromire’s Security Literacy course. I see this course as the other side of the coin to the Data Security course. Greg’s course covers things you should understand and use as a consumer of technology to help keep yourself safe. This includes tools like: HTTPS Everywhere which ensures that you have a non-snoopable connection to the site you’re using, Enigmail for safely encrypting your emails, and VPNs for securing your general Internet traffic when you’re out and about. And, of course, much more! If you’re already familiar with these protections, this is a great course to share with your friends and family that are a bit less tech savvy.
We have several other security-related courses in various stages of production, too. We’ll be covering topics like setting up an SSL certificate with letsencrypt, the OWASP Top Ten, and much more. If you have some security topics you’d like to see us cover, leave a comment! Security, like any of the languages and frameworks we cover, is much too vast of a topic for us to know all of it, so we’d love your input.